< Back to

Covered Entity

By: Martin M. Shenkman, CPA, MBA, JD

Under HIPAA, the Health Insurance Accountability Act a medical provider that must address the HIPAA rules is referred to as a “Covered Entity”. This can include any organization (health plan, health care provider, or health clearing house) that routinely handles Protected Health Information, "PHI", in any capacity is probably characterized as a “covered entity”. A covered entity must provide info to its patients about their privacy rights and how their PHI can be used (notice of privacy practices). It must adopt clear and appropriate privacy policies and procedures for its practice, hospital, or plan. It must train its workforce to understand its privacy procedures. A covered entity must designate a privacy officer responsible for assuring that privacy procedures are adopted and followed. A covered entity must also adopt adequate security procedures for patient records containing individually identifiable PHI.

Our Consumer Webcasts and Blogs

Subscribe to our email list to receive information on consumer webcasts and blogs, for practical legal information in simple English, delivered to your inbox. For more professional driven information, please visit Shenkman Law to subscribe.

Ad Space

Law Made Easy Press, LLC • P.O. Box 1130 • Fort Lee, New Jersey 07024

Notice and Disclaimer
This site might constitute attorney advertising under 22 NYCRR 1200. This site is for educational purposes only and no visitor should make any decision or take any action without conferring with an attorney and other appropriate advisers in his or her state. No attorney client relationship is established by your use of this site.

Copyright (c) 2024 Law Made Easy Press LLC. All Rights Reserved.

Linkedin